As we begin a new year, it is always good to reflect on the events of the past few months, and take into consideration what your company may be facing in terms of security challenges over the next year. Some things change by the year, or by the month… or even by the...

Cyber security may be a foreign concept for Apple and iPhone users. Windows and Android users have been coping with cyber threats for a long time, and have been constantly reminded by Apple-wielding friends, family, colleagues, and even strangers that Apple products...

Despite Google’s quick response, early May’s massive, high-profile OAuth phishing attack impacted about 0.1% of Gmail users, which is over a million people. This “phish of a different color” exploited Open Authorization, a widely adopted open protocol that gives...

Information security is not just a problem for IT geeks. It has to be everyone’s responsibility. Every employee in your company needs information security training in order to be aware of security issues and to think rationally about risks. Everyone should know better...

It’s an axiom in InfoSec that “your first line of defense in the protection of your network and data is your employees.” Basic training in information security awareness for current and new employees, along with regular refreshers, is key to deterring attacks like...

Hackers are relentless in their targeted attacks on application-level security vulnerabilities. The way to mitigate these risks is to write more secure code. Cybercrime risk isn’t the only reason to focus on software security. It’s mandated as part of many information...